Improved security system for a portable data carrier

US 4,816,654 A
Filed: 05/16/1986
Issued: 03/28/1989
Est. Priority Date: 05/16/1986
Status: Expired due to Term

First Claim

Patent Images

1. A portable data carrier system comprising:

a portable data carrier for storing and processing alterable data, the portable data carrier including both a computer for providing an executive operating system on the portable data carrier and an alterable memory for providing data to the computer for operating the executive operating system, the executive operating system providing a data input/output interface means for the portable data carrier, and creating multiple files in a data segment region of the alterable memory for storing the alterable data associated with each file, the size of each file and placement of the data for each file in the data segment region being controlled by the executive operating system and the data for each file being allocatable at any of multiple available locations throughout the data segment region by the executive operating system;

an application station for processing data from the portable data carrier; and

communication means for providing communications between the application station and the portable data carrier, the application station communicating with the portable data carrier over the communication means through command primitives, responsive to the command primitives, the executive operating system accessing the alterable data for reading therefrom and writing thereto, and providing this data to the application station via the communication means.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A portable data carrier system provides improved security for files which support multiple applications, from custom repertory dialing to storage of individual medical and/or banking records. Included in the system is a portable data carrier which looks and feels much like an ordinary credit card. The portable data carrier, however, includes a computer and an electrically erasable field programmable read-only memory. Power for operation of the portable data carrier is provided from an associated station via a reader/writer. The reader/writer also couples data between the data carrier and the associated station. Operation of the data carrier is through an executive operating system that is accessed from the station via a set of commonly understood command primitives. These command primitives manipulate the files in the data carrier in accordance with security requirements. Security is enhanced since the stations'"'"'s application software receiving and interpreting the data from a file sees a contiguous stream of bytes relating only to the file of the application being accessed. No information is provided to a user of a particular application about other applications in the data carrier or about the data carrier'"'"'s internal file structure.

Citations

9 Claims

1. A portable data carrier system comprising:
- a portable data carrier for storing and processing alterable data, the portable data carrier including both a computer for providing an executive operating system on the portable data carrier and an alterable memory for providing data to the computer for operating the executive operating system, the executive operating system providing a data input/output interface means for the portable data carrier, and creating multiple files in a data segment region of the alterable memory for storing the alterable data associated with each file, the size of each file and placement of the data for each file in the data segment region being controlled by the executive operating system and the data for each file being allocatable at any of multiple available locations throughout the data segment region by the executive operating system;
  
  an application station for processing data from the portable data carrier; and
  
  communication means for providing communications between the application station and the portable data carrier, the application station communicating with the portable data carrier over the communication means through command primitives, responsive to the command primitives, the executive operating system accessing the alterable data for reading therefrom and writing thereto, and providing this data to the application station via the communication means.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The portable data carrier system of claim 1 wherein the communications means includes a portable data carrier reader/writer, the reader/writer providing an interface for coupling data between the application station and the portable data carrier.
  - 3. The portable data carrier system of claim 1 wherein the portable data carrier further includes a header region in the alterable memory, the header region containing a first password for verifying the identity of an individual attempting to access the data in the portable data carrier.
  - 4. The portable data carrier system of claim 3 wherein access to each file for a desired transaction is controlled by a second password assigned to an individual authorized to conduct transactions within the portable data carrier.
  - 5. The portable data carrier system of claim 4 wherein each file in the portable data carrier includes files permission information for defining the type of access permitted to an individual.
  - 6. The portable data carrier system of claim 5 wherein the file permission information in the portable data carrier includes read permission, write permission and append permission, a first file having read permission allowing an individual to only read data therein, a second file having write permission allowing an individual to read data therein and write data thereto, and a third file having read and append permission allowing an individual to only read data therein and append data thereto.
  - 7. The portable data carrier system of claim 6 further including multiple security levels hierarchically arranged in a manner to comprise a least secure level, a most secure level and multiple other security levels interposed therebetween, access to each security level being controlled by a corresponding password assigned only to an individual authorized to access the, data at that security level.
  - 8. The portable data carrier system of claim 7 wherein the file permission information is assignable according to security level, a first higher order security level having permission to read data in and write data to the second file and a second lower security level having permission to only read data in the second file.
  - 9. The portable data carrier system of claim 7 wherein the file permission information is assignable according to security level, a first higher order security level having permission to read data in and write data to the second file and a second lower security level having permission to read data in and only append to the data in the second file.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
American Telephone & Telegraph Company (AT&T, Inc.), At&T Information Systems (AT&T, Inc.)
Original Assignee
American Telephone & Telegraph Company (AT&T, Inc.), AT&T Information Systems Inc. (AT&T, Inc.)
Inventors
Anderl, Ewald C., Zahavi, Avi, Frankel, Oren
Primary Examiner(s)
Faber, Alan
Assistant Examiner(s)
Weinhardt, Robert A.

Application Number

US06/863,973
Time in Patent Office

1,047 Days
Field of Search

340/825.31, 340/825.33, 340/825.34, 235/380, 235/382, 235/382.5, 235/375, 235/376, 235/436, 235/438, 235/492, 235/494, 235/379, 235/431, 364/401, 364/408, 364/200, 364/900, 902/25, 902/26
US Class Current

235/380
CPC Class Codes

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/3555   Personalisation of two or m...

G06Q 20/35765   Access rights to memory zones

G07F 7/1008   Active credit-cards provide...

Improved security system for a portable data carrier

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

9 Claims

Specification

Solutions

Use Cases

Quick Links

Improved security system for a portable data carrier

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

9 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links